ELECOM WRC-300FEBK-S contains an improper certificate validation vulnerability. Via a man-in-the-middle attack, an attacker may alter the communication response. As a result, an arbitrary OS command may be executed on the affected device.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: jpcert
Published: 2021-02-12T06:15:50
Updated: 2024-08-03T17:45:45.385Z
Reserved: 2020-12-17T00:00:00
Link: CVE-2021-20649

No data.

Status : Modified
Published: 2021-02-12T07:15:15.387
Modified: 2024-11-21T05:46:56.593
Link: CVE-2021-20649

No data.